Fortinet black logo

Get Triggering Event IDs for One or More Incidents

Get Triggering Event IDs for One or More Incidents

This API enables you to get the triggering event IDs for one or more incidents

API Specifications

Release Added

5.2.5

Methodology REST API based: Caller makes an HTTPS request with query parameter: incidentId.
Request URL https://<FortiSIEM_Supervisor_IP>/phoenix/rest/incident/
triggeringEvents?incidentIds=<incidentId1>,<incidentId2>
Input Credentials User name and password of Super account or Organization-specific account.
Input Parameters Query parameters: incidentIds
Output XML that contains the triggered event IDs for all incidents in the input list.

Refer to Example Usage to get the list of monitored devices and attributes.

Get Triggering Event IDs for One or More Incidents

This API enables you to get the triggering event IDs for one or more incidents

API Specifications

Release Added

5.2.5

Methodology REST API based: Caller makes an HTTPS request with query parameter: incidentId.
Request URL https://<FortiSIEM_Supervisor_IP>/phoenix/rest/incident/
triggeringEvents?incidentIds=<incidentId1>,<incidentId2>
Input Credentials User name and password of Super account or Organization-specific account.
Input Parameters Query parameters: incidentIds
Output XML that contains the triggered event IDs for all incidents in the input list.

Refer to Example Usage to get the list of monitored devices and attributes.